Security is not a feature. It's the foundation.
Utobo Mail is built on infrastructure designed for reliability and security. Here's exactly how we protect your data and your customers' data.
How we protect your data
Data in transit
All data between your app and Utobo Mail's API is encrypted with TLS 1.2 or higher. SMTP connections use STARTTLS. We do not accept unencrypted connections.
Data at rest
All stored data — email logs, contact records, account details — is encrypted at rest using AES-256.
Infrastructure
Utobo Mail runs on AWS with multi-region redundancy. Our infrastructure is monitored continuously with automated failover.
Access control
API keys are scoped — read-only, send-only, or full access. Role-based access for team members: Owner, Admin, Member, Viewer.
Email authentication
Every sending domain is configured with DKIM and SPF to authenticate emails at the protocol level. Protects your sender reputation and recipients from spoofing.
Responsible disclosure
Report security vulnerabilities to security@utobo.com. We respond within 24 hours and aim to patch critical issues within 72 hours.
GDPR
Utobo Mail is GDPR compliant. We act as a data processor for your contact data and process it only as instructed by you.